-
Microsoft researchers have uncovered a fast-moving group, Storm-1175, launching high-speed Medusa ransomware attacks against healthcare and education sectors in the UK, US, and Australia by exploiting security flaws in as little as 24 hours.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Microsoft Threat Intelligence reveals how Russian hacking group Forest Blizzard uses home routers for DNS hijacking and spying.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Netskope Threat Labs report a new ClickFix attack using fake CAPTCHAs to deploy Tor-backed NodeJS malware and drain crypto wallets on Windows.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
REF1695 hackers spread Monero mining malware via fake non-profit installers, using stealth tactics to evade detection and hijack systems for profit.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
GrafanaGhost is a critical vulnerability in Grafana’s AI components that uses indirect prompt injection and protocol-relative URL bypasses to exfiltrate data.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
New research from Keeper Security, reveals non-human identities and automated system-to-system interactions are becoming the top security risk for businesses in 2026.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
New Phishing scam uses fake missile alerts and the ongoing conflict involving Iran to target users with QR codes and fake government emails to steal Microsoft passwords.
·
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Cloudflare launches EmDash CMS, an AI-powered platform built to fix WordPress security flaws with sandboxed plugins, serverless scaling, and passkey auth.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
LinkedIn is accused in the BrowserGate report of tracking 6,000+ browser extensions on users’ PCs, raising concerns over privacy and data collection practices.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
North Korean group UNC1069 targets Node.js maintainers using fake LinkedIn and Slack profiles to spread malware and compromise open source packages.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
